Section 30.5 requires public body employees, officers and directors, service providers and the service provider’s employees or associates to immediately notify the head of the public body when there has been an unauthorized disclosure of personal information. As in section 30.2(1), an “unauthorized disclosure of personal information” means the disclosure, production or provision of access to personal information covered by the Act where that disclosure, production or access is not authorized by the Act. A person who contravenes section 30.5 commits an offence under section 74.1 of the Act.
Section 30.5 of the Freedom of Information and Protection of Privacy Act
30.5 (1) In this section, "unauthorized disclosure of personal information" has the same meaning as in section 30.2 (1).
(2) An employee, officer or director of a public body, or an employee or associate of a service provider, who knows that there has been an unauthorized disclosure of personal information that is in the custody or under the control of the public body must immediately notify the head of the public body.
Sections 33, 33.1 and 33.2 list the circumstances in which public bodies may disclose personal information.
For orders organized by the Act's section numbers, Click here.
For a summary of Commissioner's orders and policy interpretation of key points, Click here.
Last updated: June 2008